Multi Factor Authentication Providers

SecureMFA ADFS OTP Provider

OTP authentication for Microsoft ADFS. It is a module for Microsoft ADFS 2019 or ADFS 2016 servers. It enables ADFS servers to provide multi-factor authentication (MFA) using a Time-Based One-Time Password (TOTP) Algorithm which is based on RFC6238. Using this MFA provider users are required to enter a one time passcode, which is generated on their phones via authenticator application like Microsoft Authenticator , Google Authenticator, Symantec VIP etc. to complete second factor authentication logon.

Deploy the latest SecureMFA Time-base One-Time Pass-code provider for ADFS

Features

    • Localized English language.
    • Supports ADFS CSS themes.
    • Enable self-registration with QR code (using free Microsoft Authentication, Google Authentication , Symantec VIP etc. mobile apps).
    • Logs are stored in Windows application log.
    • Runs on ADFS 2016 and ADFS 2019 servers.
    • QR code encryption with AES 256-bit encryption.
    • Can run without MS SQL service.
    • Configuration of network locations from which user can scan QR code.
    • Offline QR code generator (Integrated into adapter)
    • Text customization for adapter interface.
    • OTP account lockout feature.
    • QR code customizations. (Advanced configuration).
    • The Identity claim for provider is UPN (http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn).
    • Works with ADDS multi-forests with trust relationships.

Requirements

    • Solution must be deployed on each of ADFS servers (not on Proxy Servers).
    • Requires MS Framework 4.6.1 or later.

SecureMFA ADFS Email OTP Provider

TOTP Email authentication for Microsoft ADFS. It is a module for Microsoft ADFS 2019 and ADFS 2016 servers. It enables ADFS servers to provide multi-factor authentication (MFA) using a Time-Based One-Time Password (TOTP) Algorithm which is based on RFC6238. Using this MFA provider user is required to enter a confirmation code, which is generated and send to an email address associated with user’s Active Directory account.

Deploy the latest SecureMFA Email Time Based OTP Provider for ADFS

Features

    • Multi-language UI: English, Spanish, French, German, Chinese, Portuguese, Russian, Italian, Arabic, Turkish, Dutch, Finnish, Swedish, Norwegian, Polish, Danish and Lithuanian.
    • Provider allows to issue One-Time Passcodes (OTP) for user authentications.
    • Authorization code validity can be customized.
    • Supports ADFS CSS themes.
    • Runs on ADFS 2016 and ADFS 2019 servers.
    • Authorization code is delivered via e-mail associated with user’s Active Directory account.
    • Unique secret keys and authentication codes for the users.
    • Secret key value encryption with AES 256-bit encryption in AD.
    • Customizable AD attributes for secret key storage.
    • Allows secure SMTP configuration (SSL) and user authentication options.
    • Logs are stored in Windows application log.
    • Supports unlimited users.
    • User interface customizations.
    • The Identity claim for provider is UPN (http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn).
    • Works with ADDS multi-forests with trust relationships.

Requirements

    • Solution must be deployed on each of your ADFS servers (not on Proxy Servers).
    • Requires MS Framework 4.6.1 or later.

SecureMFA RD Gateway OTP Provider

RD Gateway MFA provider. It is OTP authentication module for Microsoft Remote Desktop Gateway servers (Windows 2019 / 2016) which allows to provide multi-factor authentication for RDS Farms and Remote Desktop Service access using a Time-Based One-Time Password (TOTP) Algorithm . TOTP Algorithm details can be found in RFC6238. Using this MFA provider users are required to enter a one time passcode, which is generated on their phones via authenticator applications like Microsoft Authenticator , Google Authenticator, Symantec VIP etc. to complete second factor authentication logon. This module fully replaces native RD Gateway Client Authentication Policies (CAP) with OTP codes and fully integrates with native RD Gateway Resource Authorization Policies (RAP) for access and control management. More details how RD Gateway API works can be found in MSDN Article.

Deploy the latest SecureMFA RD Gateway OTP Authnetication Provider for Microsoft RD Gateway Service

Features

    • Aallows OTP authentication routines to be used with Microsoft RD Gateway service
    • Unlimited user accounts of licensed organization.
    • Integrates with native Microsoft RD Gateway resource authorization policies (RAP)
    • Supported on Windows 2016 and Windows 2019 servers
    • Web Portal which allows to initiate RDP connection using a browser.
    • Logs are stored in Windows application log

Requirements

    • Solution must be deployed on working RD Gateway Server.
    • Requires MS Framework 4.6.1 or later.

Limitations

    • You cannot configure an RD Gateway server to simultaneously use both native authentication and SecureMFA RD Gateway OTP authentication provider.